Socket Security Auditor v1.0 

Author: Neelay Shah

Application developers need to be aware that attackers can target these same client-server applications by "hijacking" the server socket. Insecurely bound server sockets allow an attacker to bind his / her own socket on the same port, gaining control of the client connections and ultimately allowing the attacker to successfully steal sensitive application user information as well as launch denial of service attacks against the application server.

Foundstone Socket Security Auditor identifies the insecurely bound sockets on the local system preventing hackers from stealing valuable information.

System Requirements:

• Foundstone Socket Security Auditor requires the use of the Microsoft .NET framework version 1.1 or later. These prerequisites may be obtained using Windows update or by visiting the website http://msdn.microsoft.com/en-us/netframework/default.aspx 
• Foundstone Socket Security Auditor has been tested on Windows XP, Windows 2000 workstations and Windows 2003 server running .NET v1.1. While it has not been tested on other versions of Windows, it should execute successfully on all Windows operating systems that can support the .NET framework v1.1 or higher

RFP Template

Foundstone has developed this Request for Proposal("RFP") template to help organizations identify and select a quality security vendor to perform professional services work.